Is this feature still available in 2.3?
Can’t find it.
/W
--
View this message in context:
http://old.nabble.com/Update-accelerator-tp27780665p27780665.html
Sent from the efw-user mailing list archive at Nabble.com.
---
Hi guys!
I feel that the Adv. Proxy in 2.2 RC3 is not caching all Windows update as
it should?
In 2.1.2 there were no discussion, it did cache and you saw when downloading
updates that it went with LAN speed to the clients.
I don't know if there is something new I did miss in the "Allowed clien
With help like this it was easy to fix the problem, PUA disabled.
Thx again compdoc.
woodrowbone wrote:
>
> Thx man! I will give it a go :)
>
>
>
> compdoc wrote:
>>
>> Log onto the console, and type these commands:
>>
>> nano /etc/clamav/cla
n press control x, type y where it asks to save at the
> bottom of the screen, then just hit enter where it asks for
> the name. Then, reboot.
>
> The # symbol turns off that line...
>
>
>
>
> -Original Message-
> From: woodrowbone [mailto:[EM
Thx for your answer Compdoc but I am not qualified for that kind of
operations via the console ;)
What I find very annoying is that Endian uses this feature when ClamAV
clearly states:
"At this point we DON'T recommend using it in production
environments, because the detection may be too aggress
Sorry! Forgot.This happened on 2.2RC3
woodrowbone wrote:
>
> Hi guys!
>
> Does anyone know how to turn this off from the Clam/HAVP module?
>
> PUA= Possibly Unwanted Applications
>
> As I suspect many of these warnings are false positives it would be a go
Hi guys!
Does anyone know how to turn this off from the Clam/HAVP module?
PUA= Possibly Unwanted Applications
As I suspect many of these warnings are false positives it would be a good
thing to be able to disable the PUA function.
This is what I get trying to visit a what I think is a perfectl
unning"
>
> try to re-enable IDS
> login to console type this command "cat /var/log/messages"
> you can see lots of snort log, if snort works ok last line show like this:
> "snort[12299]: Snort initialization completed successfully (pid=12299)"
>
&g
Hi guys!
Anyone else have this problem with the system status, Intrusion Detection
System shows "stopped" when it is enabled under services?
Tried to reboot Endian but it still shows "stopped"
Confused.%-|
Woodrow
--
View this message in context:
http://www.nabble.com/2.2RC3-Intrusion-D
Thx for the info Luca!
The rules you mentioned how does that translate to the former (as compdoc
asked) "VRT rules for registered users, or the one for subscription either."
that we got from snort?
Woodrow
Luca Giovenzana wrote:
>
> At the moment snort uses Emerging Threats rules.
> Rules up
I came across this in the help section:
Intrusion detection
Select Services from the menu bar at the top of the screen, then select
Intrusion detection from the submenu on the left side of the screen.
Endian Firewall includes the well known intrusion detection (IDS) and
prevention (IPS) system
I had problems connecting to the "green" card after install for the initial
setup. I switch cables unsure if the the "wrong" card became the "green"
one, but no go. I swithed back to and after like 30-40 minutes i could reach
the box, anyone know why this happens?
Woodrow
Mike Tremaine wrote:
Hi guys!
I am running the 2.1.2 release and just discovered that SP3 for XP need to
be downloaded from the web every time someone run Windows update, it wont
"stick" in the cache as the other updates do.
Max file size in the proxy is set to 500MB so it should not be a problem.
Anyone else experien
mode.
Regarding the snort both registered and community rules are free, I just
wonder why I cant choose anymore?
Woodrow
Gregory Machin-3 wrote:
>
> woodrowbone wrote:
>> Hi guys!
>> 3 questions:
>>
>> 1/ Can u guys enable the browser check under proxy settings? I
Hi guys!
3 questions:
1/ Can u guys enable the browser check under proxy settings? I enable it and
check the browsers I want and save reload button but it will not stick.
2/ Whats up with Snort on this release, does it update its rules
automatically now, and if so what kind of rules do I get, co
Thx Kevin!
Woodrow
Kevin Fason wrote:
>
> Theres a bug report for this issue.
> http://bugs.endian.it/view.php?id=543
>
> Date:
> Thu,
> 7
> Feb
> 2008
> 01:28:23
> -0800
> (PST)
> From:
> woodrowbone
> <[EMAIL PROTECTED]>
>
Is this confirmed as a bug by Dev or is it us brainless users? :confused:
Woodrow
woodrowbone wrote:
>
> Hi all!
> I did install beta3 on a new HDD and all went well, very fast install
> now.:clap:
> The backup I did from 2.1.2 went in and it seemed to work fine at first, I
&g
Hi,
Thx Hartmut that did the trick!
Does this mean that when I not have "Enable Browser Check" enabled I wont
cache windows update locally anymore?
Btw! Is it possible to add all your cached windows updates to the "backup"
feature in the future Peter?
Woodrow
Hartmut wrote:
>
> Hi,
>
> "Wi
Hi all!
I cant get Windows update to work on this release:-((
I did fiddle around with all proxy settings I could think of but nothing
worked out for me.
Anyone else with this problem?
Cheers
Woodrow
--
View this message in context:
http://www.nabble.com/2.2-Beta-3-Windows-update-does-not-wor
Hi all!
I did install beta3 on a new HDD and all went well, very fast install
now.:clap:
The backup I did from 2.1.2 went in and it seemed to work fine at first, I
could surf, all network settings and my port forwards were there.
Then I took a look at my game server that I host and that one lost
Hi again Peter!
I see the problem still exists in Beta2 or is it me?
On top of that it does show the green card as NOT started when it is.
Woodrow
Peter Warasin-2 wrote:
>
> Hi
>
> woodrowbone wrote:
>> Intrusion Detection System (RED) is gone from my services in th
Hi!
Would it be possible to "keep" all the windows updates you downloaded in
adv. proxy when making a backup?
Woodrow
--
View this message in context:
http://www.nabble.com/Future-feature-request-tf4846282.html#a13865413
Sent from the efw-user mailing list archive at Nabble.com.
-
Now I wonder if it ever were in the System Status Information page in the
first place? Today I saw another installation of Beta 2.2 without the red
Intrusion Detection System in the "services"? :confused:
woodrowbone wrote:
>
> Intrusion Detection System (RED) is gone from my
I understand what you mean, I did struggle a bit with this as well, (change
the GUI a bit for next release?)
You will find it under: Proxy, http:default settings, create a rule...
Hope it works out...
Woodrow
Viagi wrote:
>
> I must be blind, but I can not see where to turn ON/OFF the HTTP An
Intrusion Detection System (RED) is gone from my services in the System
Status Information page?
I did try to reboot and turn off/on but it still does not show up.
I only see the green one, any ideas?
--
View this message in context:
http://www.nabble.com/Intrusion-Detection-System-%28RED%29-2
I have 100Mbit connection at home, and now and then ;-) I download using p2p
or normal http download, and some game servers running who eats a lot of
upload bandwidth.
I sometimes use all my bandwidth but it never shows up in the traffic graph
correct, it has been like this since I did start to us
Yes, I cant get the Proxy graphs to work as well.:confused:
Hartmut wrote:
>
> Hi,
> there are no proxy diagrams.
> I see "Lines Analyzed: 6748 lines (6748 errors)".
>
> Hartmut
>
>
> -
> This SF.net email is sponsored b
the right place for this
request or if there is another solution for this?
Woodrow
Peter Warasin-2 wrote:
>
> woodrowbone wrote:
>> Thx for your answer!
>> Is there another way to do this or could this be a new feature for the
>> 2.2?
>> Devs?
>
> What exac
Thx for your answer!
Is there another way to do this or could this be a new feature for the 2.2?
Devs?
Woodrow
Kenneth Lundström wrote:
>
> As I see it, it can´t be done because in port forwarding you always
> forward a port to a specific internal adress.
>
> Kenneth
>
>> Hi guys!
>> I wo
Hi guys!
I wonder if there is a way to set up a range of internal ip;s in the port
forward section?
I would like IP xxx.xxx.xxx.21-139 to have ports 6800-6803 opened up on RED
for incoming traffic.
Is there a way of doing this or am I looking in the wrong section of Endian?
Thx
Woodrow
--
View
i686 i386 GNU/Linux
>>
>>
>>
>>
>>
>> Joseph L. Casale wrote:
>>>
>>> Exact scenario occurred for me as well.
>>>
>>> -Original Message-
>>> From: [EMAIL PROTECTED]
>>> [mailto:[EMAIL PROTECTED] On
Thx a lot h h-2! =)
I guess this is a task for the devs. to take care of, I hope they read this
mailing list or?
h h-2 wrote:
>
> The problem with the updating of snort rules is that
> the 2.3 ruleset is no longer available on snort.org.
>
> I modified the /home/httpd/cgi-bin/ids.cgi file an
and found no solution
> for
> it.
>
> Has anybody a solution for this?
>
> Greetings
> tomakos
>
>> -Original Message-
>> From: [EMAIL PROTECTED] [mailto:efw-user-
>> [EMAIL PROTECTED] On Behalf Of woodrowbone
>> Sent: Sonntag, 14. Oktober 2007
Hi guys!
All of a sudden I get these messages when trying to update the IDS (snort)
First this mess: Invalid MD5Sum.
Then this: Access refused with this oinkcode
I did try to make a new account at snort with a new oinkcode but no go >-(
Anyone knows why:confused:
Woodrow
--
View this message in
I think snort is the "detection system" and snortsam is the "prevention
system" in Clarkconnect.
>From what I read snortsam is like a "plugin" for snort, is this included in
the snort of Endian?
woodrowbone wrote:
>
> Hi guys!
>
> Before
Hi guys!
Before testing Endian I did use Clarkconnect with an Intrusion Prevention
feature that I did like.
It blocked an attackers IP for 24 hours if it detected suspicious behaviour,
does Endian have something like that?
Woodrow
--
View this message in context:
http://www.nabble.com/Does-End
36 matches
Mail list logo
